Senior Security Engineer

The security team is a dedicated team with the goal of ensuring that every user and their information is protected; Rokt’s platform and services are secure; and security best practices are promoted across the entire company. As part of the team you will be able to collaborate on the definition of security guidelines and practices at Rokt, as well as advising our Security Champions on Secure SDLC best practices. Working closely with our SRE team, we develop tooling to prevent insecure code being released into our operating environments, as well as detection of configuration non-conformances and IoCs.

Outcomes & responsibilities:

• Hardening our containers, servers, and networks against exploitation and privilege escalation.
• Provide subject matter expertise on security requirements for certifications like ISO 27001, SOC2, PCI DSS. Instrument systems and networks to enable rapid detection of and response to outliers, intrusions and abuse.
• Implement security tests and practices inside
• Continuous Delivery/Continuous Integration environments.
• Develop security tooling for detection and prevention.

In addition, you will be expected to: Advise our Security Champions on Secure SDLC best practices. Contribute to improving security guidelines and practices. Mentor and develop junior team members.

Capabilities & requirements:

• Strong understanding of software engineering principles.
• Development experience with Python or another general purpose programming language.
• A security generalist background with experience in application security, encryption, hardening, cloud security and compliance.
• Be motivated, self-driven in a fast (we truly mean fast) paced environment with a proven track record demonstrating impact across several teams, organisations and/or security areas.
• Demonstrated experience with implementing security tests and practices inside
• Continuous Delivery/Continuous Integration environments.
• Solid foundational knowledge of technologies around network security including Linux, PKI, DNS, load balancing, IPSec, TLS and HTTP.
• BS degree in Computer Science, similar technical field of study or equivalent practical experience.

• Strong understanding of software engineering principles.
• Development experience with Python or another general purpose programming language.
• A security generalist background with experience in application security, encryption, hardening, cloud security and compliance.
• Be motivated, self-driven in a fast (we truly mean fast) paced environment with a proven track record demonstrating impact across several teams, organisations and/or security areas.
• Demonstrated experience with implementing security tests and practices inside
• Continuous Delivery/Continuous Integration environments.
• Solid foundational knowledge of technologies around network security including Linux, PKI, DNS, load balancing, IPSec, TLS and HTTP.
• BS degree in Computer Science, similar technical field of study or equivalent practical experience.